Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.

We are on a mission to make society a safer and more secure place. Our people are the ones who make that mission possible; a global community of talented individuals working together towards a safer future.

We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference and we want you to help us in our mission, as an Senior Security Consultant for our Healthcare Practice.

The Opportunity:

NCC Group is always looking for amazing people to join our team. Compliance Services supports clients in improving their information security posture while helping them to cost-effectively meet their legal and regulatory compliance requirements. A Senior Security Consultant (SSC) in our Compliance Services team must have the experience, technical skill, consulting finesse, and management skills required to deliver a broad variety of technically demanding projects. This role is for individuals with extensive healthcare security consulting experience or those who can immediately contribute at a senior level.

The Challenge:

As a Senior Security Consultant, your role will focus on acting as a Project Lead, developing skills needed to deliver high-quality projects, and promoting the development of high performing teams through mentorship. SSCs are expected to:

• Demonstrate mastery of four (4) areas of Technical Competency (see below), and subject matter expertise in one or more areas

• Act as project Leader

• Author final deliverable documentation for engagements

• Perform final review on deliverables

• Lead medium to large complex projects and supervise contributing resources

• Coordinate documentation and lead read outs on medium to large engagements

• Complete specific training goals as agreed upon

Essential Skills:

At NCC Group we are passionate about passionate people. We are looking for an individual who thrives in an ever-changing environment; someone who can work with multiple teams to get the job done and deliver great work.

Required Candidate Attributes/Skills:

• Minimum of 5 years of experience in Heathcare services with an emphasis on HIPAA, HITRUST, and CMS

• Minimum of 2 years of experience in leading teams delivering professional services

Technical Competencies (included, but not limited to):

• Experience working with Network scoping and designs

• Background or Certifications in U.S. Privacy

• Server/desktop operating systems (Windows, MacOSX, Linux, etc.)

• Office productivity tools; Word, Excel, and PowerPoint

• Data analytics; Access, MySQL, etc.

• Programming and/or scripting languages; Python, PowerShell, Linux shell scripting, etc.

• Physical Security Assessment

• Risk Assessment

• Third Party/Vendor Risk Assessment

• Security and Compliance Frameworks

• ISO/IEC 27xxx

• NIST Cyber Security Framework

• NIST Privacy Framework

• NIST SP800-53

• NIST SP800-171

• HIPAA/HITRUST

• PCI DSS

• FedRAMP

Relevant Professional Certifications:

• HITRUST Certified CSF Practitioner (CCSFP)

• HealthCare Information Security and Privacy Practitioner (HICSPP)

• Certificate of cloud Security Knowledge (CCSK)

• ISO 27001 Lead Implementer

• ISO 27001 Lead Auditor

• Certified Information Systems Auditor (CISA)

• Certified Information Systems Security Professional (CISSP)

• Certified Cloud Security Professional (CCSP)

Personal Qualities

• High-level of professionalism, even in the midst of stressful engagements

• Outstanding attention to detail

• Ability to lead teams and multi-faceted projects effectively

• Self-motivated and a demonstrated self-starter

• Highly dependable; team player willing to perform any task necessary to help team succeed

• Excellent time management skills